@Presbuteros: Are you timing out on Interfaces>Assignments only or with the webConfigurator/GUI completely? Does it respond to ping? Can you access the shell? Does ping from shell to 1 of 120 vlan subnets respond to ping? (you may not have this configured yet) The issue is only with timing out on https://pfsense/interfaces_assign.php Other areas of the webConfigurator are working as expected. I can access the shell with no issues but have not got my head around how to manage interfaces from there as yet. NAT to the 120 subnets on 120 VLANs is working great. @johnpoz: So 120 vlans sharing 1 physical interface - seems efficient ;) So users are at 10mbps and this is a 10ge interface? This is a very specific lab / testing environment where NAT to the 120 subnets on vlans on the single interface makes absolute sense in the context of the outcomes we are looking to achieve. Traffic over vlans is less than 1KBps, so not a concern.

Definitely provide more details, I'd chime in if I could. But I personally feel that it is worth helping out a potential pfSense customer on the forums. If someone can let him know if pfSense works for his needs then he buys 1+ official pfSense product, and the project is supported. To me this is different than some home user like myself chiming in with "hey my ddWRT router VPN is slow, can pfSense a VPN make on my laptop"?

The state table (Diagnostics -> States) will also show the assocations between the WAN interface states and the LAN interface states.

Thanks

Thanks arnoldo0945 but i already read those article and I've not get answers to my question. Anyway thanks for spending time helping me.. :)

All those things do is make an IPsec tunnel to the mother ship. There is generally nothing that needs to be done in the firewall. Get the IP address out of the DHCP leases page and filter states on it. From that you should be able to tell what it is doing and if there is bidirectional traffic. If there is, be patient. Start from a reset. They can take a LONG time to start working. Put it in a window if not outside as has been mentioned. The last one I dealt with had a GPS antenna that looked like a little mouse. We put that in the window. It eventually came up.

Re read jimps post, they are working fine. Don't use system tunables unless you know exactly what you are doing it are told to do so by someone who does.

Have you verified that your cable provider isn't doing some night time maintenance?  What do the cable modem logs show?

Not sure whether it's normal or not, anyway, the logging apparently is configurable via GUI.

And how would that work when its IP is not in that network.. Your gateway has to be in the same network as your IP.. So its IP is 192.168.89/24  What is pfsense IP in that network??  That would be your switches default gateway. Why would your switch need multiple svi's for management?? If you say you can get to its IP you have on its vlan 1 to manage it.. Its IP in the 192.168.89 serves no purpose if its not going to do routing for that vlan..

I can't answer your question as to how to see swap usage per process, however you might want to check these out: https://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/misc.html#idp60039016 https://forums.freebsd.org/threads/22576/ Basically, if you aren't experiencing performance issues or if you don't have write sensitive media then things are probably performing as designed. However, if you do have write sensitive media you have a couple of options: You can turn swap off: Manually, I believe you just remove it from /etc/fstab? Google knows though Do a clean install and specify 0 for swap size You can create a small RAM disk and run swap there. This is kind of counter-intuitive but if you need to avoid writes but are worried that the system may have issues without any swap at all it's a workaround. Unless you're having issues I would just leave it as is. FWIW I've disabled swap on my install (write sensitive media) and have had no issues yet, although I still wouldn't recommend it without a reason to do so.

@doktornotor: Sorry, I still don't follow. What access to WAN port? Plus, as discussed elsewhere, there's nothing wrong with your DNS. From full access I was trying to say that I was able to communicate through that port, with DNS, internet, … and there was no limitation resultant of the gateway state who was unknown in that time, from lan ports. Dont know if was that your question  :-\ I have already figure out what was happening, I have already posted the solution that I have found to solve the DNS problem in the first topic where you start helping.

A span port would be done on your switch.. Not on pfsense with a bridge.

Apologies, I really thought I had responded to this. The issue did in fact prove to be a faulty GS748Tv5 switch, where a fan had failed - yet somehow did not flag up in the GUI or in the status light in the front panel. For the past 4 weeks or so, on restarts have been required. Thanks for all your help.

Agreed. I may add "Copy to clipboard" functionality as well since that was just developed for other pages in the GUI